pam (SUSE:Manager Server 4.3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Manager Server 4.3 package pam, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2025-6018 — CVSS 7.8 (high): A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM)…
CVE-2025-6020 — CVSS 7.8 (high): A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local…
CVE-2024-22365 — CVSS 5.5 (medium): linux-pam (aka Linux PAM) before 1.6.0 allows attackers to cause a denial of service (blocked login process) via mkfifo because the openat…